CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4794 matches found

CVE-2026-11492

A security flaw has been discovered in D-Link DIR-823G 1.0.2B05. The affected element is an unknown function of the file /etc/vsftpd.conf of the component vsftpd. Performing a manipulation results in least privilege violation. The attack can be initiated remotely. The exploit has been released to...

8.8CVSS0.00024EPSS

Exploits1References6

Cvelist•added 2 days ago•38 views

CVE-2026-11492 D-Link DIR-823G vsftpd vsftpd.conf least privilege violation

5.3CVSS0.00024EPSS

Exploits1References6

Positive Technologies•added 2 days ago•6 views

PT-2026-47254

5.3CVSS5.1AI score0.00024EPSS

Exploits1References7

RedhatCVE•added 5 days ago•5 views

CVE-2026-8346

A vulnerability was detected in D-Link DIR-816 1.10CNB05R1B011D88210. This affects the function portForward. Performing a manipulation of the argument ipaddress results in command injection. The attack can be initiated remotely. The exploit is now public and may be used...

8.8CVSS6.5AI score0.00089EPSS

Exploits1References1

RedhatCVE•added 5 days ago•4 views

CVE-2026-8345

A security vulnerability has been detected in D-Link DIR-816 1.10CNB05R1B011D88210. Affected by this issue is the function sub445E7C of the file /goform/singlePortForward. Such manipulation of the argument ipaddress leads to command injection. It is possible to launch the attack remotely. The...

8.8CVSS6.4AI score0.00089EPSS

Exploits1References1

RedhatCVE•added 5 days ago•6 views

CVE-2026-7068

A vulnerability was identified in D-Link DIR-825 3.00b32. This affects the function NMBDprocess of the file sserver.c of the component nmbd. Such manipulation leads to buffer overflow. The attack can only be initiated within the local network. The exploit is publicly available and might be used...

8.8CVSS8AI score0.00382EPSS

Exploits1References1

RedhatCVE•added 5 days ago•6 views

CVE-2026-7069

A security flaw has been discovered in D-Link DIR-825 up to 3.00b32. This impacts the function AddPortMapping of the file upnpsoap.c of the component miniupnpd. Performing a manipulation of the argument NewPortMappingDescription results in buffer overflow. The attack needs to be approached within...

8.6CVSS7.7AI score0.00082EPSS

Exploits1References1

RedhatCVE•added 5 days ago•6 views

CVE-2026-5844

A vulnerability was found in D-Link DIR-882 1.01B02. Impacted is the function sprintf of the file prog.cgi of the component HNAP1 SetNetworkSettings Handler. The manipulation of the argument IPAddress results in os command injection. The attack may be performed from remote. The exploit has been...

8.6CVSS6.7AI score0.00118EPSS

Exploits1References1

RedhatCVE•added 5 days ago•6 views

CVE-2026-5984

A vulnerability was identified in D-Link DIR-605L 2.13B01. Impacted is the function formSetLog of the file /goform/formSetLog of the component POST Request Handler. The manipulation of the argument curTime leads to buffer overflow. The attack is possible to be carried out remotely. The exploit is...

9CVSS8.3AI score0.00016EPSS

Exploits1References1

RedhatCVE•added 5 days ago•6 views

CVE-2026-5980

A flaw has been found in D-Link DIR-605L 2.13B01. Affected by this issue is the function formSetMACFilter of the file /goform/formSetMACFilter of the component POST Request Handler. This manipulation of the argument curTime causes buffer overflow. The attack may be initiated remotely. The exploit...

9CVSS8.2AI score0.00039EPSS

Exploits1References1

RedhatCVE•added 5 days ago•5 views

CVE-2026-5982

A vulnerability was found in D-Link DIR-605L 2.13B01. This vulnerability affects the function formAdvNetwork of the file /goform/formAdvNetwork of the component POST Request Handler. Performing a manipulation of the argument curTime results in buffer overflow. Remote exploitation of the attack is...

9CVSS8AI score0.00039EPSS

Exploits1References1

RedhatCVE•added 5 days ago•5 views

CVE-2026-6014

A flaw has been found in D-Link DIR-513 1.10. This issue affects the function formAdvanceSetup of the file /goform/formAdvanceSetup of the component POST Request Handler. This manipulation of the argument webpage causes buffer overflow. It is possible to initiate the attack remotely. The exploit...

9CVSS8.1AI score0.00122EPSS

Exploits1References1

RedhatCVE•added 5 days ago•4 views

CVE-2026-6013

A vulnerability was detected in D-Link DIR-513 1.10. This vulnerability affects the function formSetRoute of the file /goform/formSetRoute of the component POST Request Handler. The manipulation of the argument curTime results in buffer overflow. The attack may be performed from remote. The explo...

9CVSS8.1AI score0.00092EPSS

Exploits1References1

RedhatCVE•added 5 days ago•6 views

CVE-2026-42373

D-Link DIR-605L Hardware Revision B2 End-of-Life, EOL contains a hardcoded telnet backdoor. The device starts a telnet daemon at boot via /bin/telnetd.sh with the username "Alphanetworks" and the static password "wrgn76dlwbrdir605L" read from /etc/alphaconfig/imagesign. The custom telnetd binary...

9.8CVSS5.5AI score0.00269EPSS

Exploits1References1

RedhatCVE•added 2026/05/13 8:23 p.m.•5 views

CVE-2026-8344

A weakness has been identified in D-Link DIR-816 1.10CNB05R1B011D88210. Affected by this vulnerability is the function sub445E7C of the file /goform/formDMZ.cgi. This manipulation causes command injection. It is possible to initiate the attack remotely. The exploit has been made available to the...

8.8CVSS6.4AI score0.00089EPSS

Exploits1References1

EUVD•added 2026/05/12 12:31 a.m.•4 views

EUVD-2026-29349

6.5CVSS5.7AI score0.00089EPSS

Exploits1References6

CVE•added 2026/05/11 11:15 p.m.•12 views

CVE-2026-8346

The CVE-2026-8346 entry concerns D-Link DIR-816 devices (firmware 1.10CNB05_R1B011D88210/variants) where the portForward function is vulnerable. A flaw in handling the ip_address argument enables remote command injection, with reported public exploits. The affected component is the portForward lo...

8.8CVSS6.5AI score0.00089EPSS

Exploits1References5Affected Software1